CN102804196A

CN102804196A - Computing device with graphical authentication interface

Info

Publication number: CN102804196A
Application number: CN2010800365890A
Authority: CN
Inventors: 马丁·里迪福德
Original assignee: Research in Motion Ltd
Current assignee: BlackBerry Ltd
Priority date: 2009-06-18
Filing date: 2010-06-15
Publication date: 2012-11-28
Anticipated expiration: 2030-06-15
Also published as: CN102804196B; CN102804195B; US10325086B2; TW201115383A; US20150248547A1; GB0912008D0; US20100322485A1; WO2010146353A1; US9064104B2; CA2765922C; GB2471142A; WO2010146352A1; EP2443579A1; CA2766019C; CN102804195A; GB2471142B; CA2765922A1; CA2766019A1; GB0910545D0; EP2443581A1

Abstract

A computing device with a graphical authentication interface in which the device displays a base image and authenticates a user when a pre-selected element in a secondary image overlying the base image is aligned with a pre-selected element in the base image.

Description

Computing equipment with pattern authentication interface

The cross reference of related application

The right of priority of the No.GB0912008.0 of patented claim formerly that the No.GB0910545.3 of patented claim formerly that the application requires to submit in Britain Department of Intellectual Property on June 18th, 2009 and on July 10th, 2009 submit in Britain Department of Intellectual Property, the full content of these two applications is incorporated into here by reference.

Technical field

The disclosure relates to the computing equipment with pattern authentication interface.

Background technology

Although most computing equipments (especially personal computing devices) have built-in password security, many people do not select to start troublesomely built-in password security.The people who starts built-in password security feels disappointed to it usually, and has the company system that changed password in every month usually.Each login needs different passwords ideally.It is very loaded down with trivial details remembeing all these passwords and selecting suitable one.

In the reality, can destroy the password system that is used for computing equipment in many ways, for example: repetition test (for example hitting random key) at random, wherein find correct password the most at last, just need the long period; The systematicness repetition test is for example for PIN number trial 0000,0001,0002 or the like; Have a mind to conjecture, for example attempt the number of general preference, for example 1066,1234 or the like, perhaps attempt personal number, for example birthday, telephone number or the like; Through keeping watch on, peep, find password of writing somewhere or the like behind, and know password; Assault, for example button is clicked measurement, online intercepting or the like; Compelled open to the robber.

4 PIN have 10 * 10 * 10 * 10/1=10,1/000th or 0.0001 theoretical security.Attempt if the hacker typically can only carry out 3 times to these probabilities, then the hacker possibly abandon.Yet; In fact problem is; It is found that to be difficult to remember a plurality of password/numbers, thus people select maybe be at other local widely used personal numbers of remembering, perhaps people need somewhere near the number of not remembering that (usually need the computing equipment of security) writes.Finally, exist the supervision swindle perhaps only when someone imports its PIN or password, to peep to know many report instances of password behind from it.Therefore, can think that the physical security (seeing from hacker or burglar's viewpoint) that the PIN number provides is in fact quite common.

Summary of the invention

Authenticated when a kind of computing equipment with pattern authentication interface, said equipment show primary image and element of selecting in advance in the assistant images that covers primary image and the element alignment of selecting in advance in the primary image in the pattern authentication interface.

Description of drawings

Fig. 1 shows according to unsuccessful pattern authentication of the present disclosure.

Fig. 2 shows according to successful pattern authentication of the present disclosure.

Fig. 3 shows the primary image according to pattern authentication of the present disclosure.

Fig. 4 shows according to disclosure focus in primary image and the circular authentication region that is associated during pattern authentication is set up.

Fig. 5 shows the selection according to the focus of the disclosure during pattern authentication is set up.

Fig. 6 shows the selection according to the element of the assistant images with digital form of the present disclosure.

Fig. 7 shows the affirmation screen that signal is set up according to success identity of the present disclosure.

Fig. 8 shows the primary image that is covered by assistant images according to of the present disclosure.

Fig. 9 shows according to the authentication through element in the assistant images and focus in the primary image are alignd and carry out of the present disclosure.

Figure 10 shows the screen of confirming success identity according to the disclosure.

Figure 11 shows the block diagram according to computing equipment of the present disclosure.

Embodiment

A kind of computing equipment with pattern authentication interface, wherein, said equipment shows primary image, the user is for authentication, with the element alignment of selecting in advance in element of selecting in advance that exists in the assistant images layer that covers primary image and the primary image.

This method is utilized our height visual acuity and memory.We can remember thousands of faces, hundreds of images and countless view.Even utilized the born ability of remembeing small visual details easily in this method just; In a realization, this method needs the user to remember to be familiar with the accurate point on the image, and can remember another visual element, and this element is alignd with this point.User experience is much better than the system of tradition based on PIN or password.In addition, this method is safer, especially spies on you to someone and uses this system to carry out the situation of authentication.In addition, the user can't write the part of hypograph or image to be seen by other people or to steal, and these are different with PIN code or password.

This method is described in realization with reference to being called Clixel.Clixel is based on the simple analog alignment task of carrying out on the Portable, personal computing equipment, this computing equipment have color/graphics and two dimensional cursor control perhaps (a) select position and (b) other modes of mobile image on the image.(in the future, this can carry out in the 3D virtual environment, therefore needs three D controllers, but current C lixel realizes using the control of 2D cursor).

The basic tomographic image of computing equipment screen display is fixed on static position usually.Although Clixel uses static primary image layer, the ability that moves the primary image layer can improve security.For example, when showing the primary image layer, computing equipment can be automatically carries out readjusting size and reorientating further to prevent copy slightly to the primary image layer at every turn.

This primary image layer is equivalent to the desktop background picture, possibly import from user's photograph album.As far as the user, individual picture more can be remembered than general sampling.Numerous and diverse, detailed picture performance is best; The software that on computing equipment, moves can be analyzed the numerous and diverse degree and the applicability scoring of picture.

When setting up verification process, the focus remembered in this primary image of ID (we are called " point of safes "), and use mouse or analog put pointer and click affirmation above that, on this layer, set up target.Operable other navigator comprise track pad, ISO point, trace ball, touch-screen, inclination/gesture/shake control, cursor is controlled or the like.In some simple touch-screen computing equipments (like navigational system), there is not this cursor; But the user can select focus through touching focus simply.

Size and the safety grades that can adjust target are inversely proportional to.In case confirm, pointer disappears, and activates sightless target.Auxiliary layer occurs now and covers basic layer.Clixel uses 2 layers, and wherein x and y cursor are controlled every layer position, perhaps touch-pull the auxiliary layer mode simply.Thereby in addition the more arrangement and the greater security of big figure, a plurality of (for example 3 or more) layer also is possible.

This auxiliary layer (can be top layer) can be transparent or translucent, but except the array with user's marker element of regular pattern or grid arrangement.These elements can be numeral, alphabetic word, color, shape, lines, icon or the like, or these any combination.(notice that the required lowest term of Clixel work is the cursor that is used for top layer.If nobody spies on, then have the higher-security grade in theory, but in fact this is relatively poor scheme, because copy too easily.)

When cursor/mouse moved, the whole grid array in the assistant images layer moved on static basic picture.In not having the touch panel device of cursor, the user then can pull on the touch-screen or knocking its finger so that grid moves on static basic picture simply.Can use modeling, the distance that the rapid change grid that makes touch knock moves based on physics.In having the computing equipment of accelerometer, can use and shake or the control of tilting; Little inclination can make grid be revealed as beginning and on primary image, slide.Grid repeats or circulation along all directions, makes it not have the edge.This means that selected element also repeats.

The task of establishment stage is but that the marker element of selecting in advance that exists in the top layer align with selected focus (or point of safes) in the basic layer, and common then click is to confirm.

Grid size is more little, and the element number in the second layer or the top layer is many more; Element number is many more, and security is high more, but the user is difficult to more fast and easily locatees designed element.Under the situation of clicking inconvenience (for example utilizing touch-screen), can use stop regularly as affirmation.Yet, need software and prevent " clearance "---enough come flyback retrace to start stop regularly lentamente.

This process of setting up can be directly carried out on the computing equipment of authentication mechanism needing, accomplish in case set up, then the user need be when visit computing equipment (or computing equipment provide specific function/access level) authentication himself.Therefore, for example, the user of PC or mobile phone can accomplish the above-mentioned process of setting up on this PC or mobile phone.In addition, the user can accomplish the above-mentioned process of setting up on a computing equipment, and this sets up process can be applied to a plurality of other equipment, so the user only accomplishes once and to set up, and he possibly need all computing equipments of visit to share identical verification process then.This is particularly suited for having the required authentication of organizing of a plurality of computing equipments, perhaps is suitable for cloud computing application, point of sale authentication (for example at cash dispenser or when using credit or debit card to buy) and replaces traditional die and PIN system.

When the user need to the computing equipment authentication himself the time (for example) as long as in more than the time of selecting in advance, do not use equipment, need the same case of traditional PI N or password input, equipment shows primary image.Can call the assistant images layer then.This can carry out in every way.For PC, in case any key or rolling mouse on the user touches key dish, the assistant images layer can occur automatically.For touch panel device, can call the assistant images layer to the single touch of screen.For handheld device (like mobile phone), short shake (or any aforementioned activities) and can call the assistant images layer.In case show the assistant images layer, the user must move the element in this assistant images layer, make that the element of selecting in advance in this assistant images layer fully aligns on the focus of selecting in advance.Because the element in the assistant images layer is formed the link grid of element, moves an element and cause every other element to move with predictable mode.Therefore; The element that the user need not select to select in advance also moves it; But can select any element (for example the user can place its cursor any position of assistant images layer or touch any position of assistant images layer simply); Then it is moved, the element of selecting in advance in the assistant images layer with basic layer in focus between fully align.But the observer who steals a glance at the user from behind will not know that which zone that the user is aliging in which element and the primary image is a target.

The display with wide X and high Y 118 of computing equipment 100 has been shown among Fig. 1.Show the position of the focus 101 and the element of selecting in advance 103 in the assistant images of the selection in advance in the primary image.When the element of selecting in advance in the assistant images fully alignd on the focus of selecting in advance, success identity (for example login attempt) took place.In the example of Fig. 1, have radius D, be that the circle at center is an authentication region 105 with focus 101, in authentication region 105, the positions of elements of selecting the in advance authentication of succeeding.In this example, D is for success identity (like login), from the ultimate range of focus to element position.E is the distance of the position of the element of selecting in advance 103 from focus 101 to assistant images.Because greater than distance B, authentication in this example is unsuccessful apart from E.

In Fig. 1, authentication is unsuccessful because in the top layer selected element with basic layer in focus or point of safes between align accurate inadequately.Note, can change authentication region 105 through revising the D value.This has changed the number percent that trial is succeeded and logined in the overall screen area (X*Y).If D is less, then will align with focus 101 so that successfully login more accurately in the position of the element in the assistant images 103.If D is bigger, then align with focus 101 so that successfully login on out of true ground relatively in the position of the element in the assistant images 103.In fact, the manufacturer of computing equipment will set up for the optimized parameter value of given screen resolution with size and given cursor mechanism through meticulous test.The ability of effective size (being distance B) in the zone of selecting to be associated with focus can also be provided to the user.

Fig. 2 shows successfully alignment, thus obtain authentication and obtain to computing equipment visit (if or equipment be point of sales terminal, then confirm to sell or the like).

Below check said method to 6 kinds of modes of criterion of failure password or PIN.

Repetition test or systemic repetition test at random: safety grades is that target area is divided by screen area.2mm target on the laptop computer screen provides approximately and 4 safety grades that the PIN number is identical.Bigger if desired security then can be clicked in proper order in utilization, uses two or more targets.Utilize two targets, because the area of two targets, the security of each grade reduces by half, but the probability of double-stage operation multiplies each other, and therefore in theory for the laptop computer example, security increases to 25,000, and 1/000th.The security of peeping behind will be on basic layer or on top layer and difference according to two targets.Yet two targets on the basic layer and a target on the top layer possibly be to use the fastest.Through following the tracks of moving between two clicks, can increase other security---can analyze vector/gesture/timing as signature.

Have a mind to conjecture: thus for example can confirm 100 zones of maybe focus and not having the local no focus of details to the analysis of basic picture.If 100 elements are arranged in the grid array, then security is 1/1000th.Yet,, in fact possibly exist far more than 100 target locations, because the user can be with the edge of something or the border between the object or the like as target because this is a simulation system.

Know password through supervision: if the people who peeps is from behind resisted in expectation, then Clixel can be suitable in this field more excellent.As stated, grid array is revealed as identical all the time, so anyone can see on point of fixity (the for example lower left corner) and the top layer on the basic layer and the relation between its immediate element, and repeats this action.But if grid array changes its layout when manifesting at every turn, then this action is inoperative.This change can be to the spacing of grid, grid towards or inclination, grid in the order, the shape of grid or the like of element, perhaps these any combination provides hundreds of potentially the variations of selecting at random on array.These changes will be designed to trickle, and be revealed as similar in order to avoid puzzled to the user.

---but the focus on the basic layer and marker element on the top layer---should be easier to memory, thereby have no reason relatively and will it be write owing to exist two simple personal entities to remember.Because two layers as prompting, have no chance to select wrong password to carry out the mistake login.Even the memorandum of writing also possibly carried to a certain degree uncertainty (i.e. " 55 with Anne the corners of the mouth ").In above-mentioned example, only know that for a moment safety grades being reduced to of these entities is about 1/100th, but still be effective obstacle.

Assault: use analog mouse/trace ball/touch-screen to enter password preventing to use Hacker Program, knock other this technology of getter or login details that can the intercepting user like keyboard.Although can follow the tracks of mouse really, since the generation at random of the numeral in the grid, the password that the track of tracking mouse can not drawn the user.

Through using combination from the sexadecimal information of two layers, further strengthened safety on line as authenticate key.Do not use the simple numerical set; Be pixel and the x of picture on the screen; Y coordinate (although this is a kind of selection really); This system can obtain the byte code sequence than hundred times of domestic consumer's password long numbers with the binary message and the basic picture layer merging that is used to appear picture from the top grid layer.Then, can use byte code sequence, rather than the set of letter or number, come to the server system authenticated.Therefore, because the length of sequence is compared with the password that domestic consumer imports, intercepting or assault are more much more difficult.

The information that is used to appear separating layer (for example top layer grid and bottom picture) can also reside at zones of different potentially; For example; Can protect and appear user's picture according to user's credit card or the information in the mobile phone, can be kept on the server system or produce by ATM and produce the required concrete element of particular grid to this user.There is not the project of the original image that comprises the user in this separation that produces the required key element of authenticate key at least through preventing that the third party from visiting two units simultaneously and usually having increased further safety grades.

Compelled open to the robber.Clixel provides through when logining, describing the chance that wrong alignment misleads the robber to the victim of bravery.Then, because at random grid changes, when attempting once more should operation the time with inoperative.

To the security of system and the factor of availability is the outward appearance of top layer array.But between easy selected marker element in location and element number, exist compromise.The requirement of random modification array has solved this compromise.Through being disposed in order numeral, find selected element (for example in the grid of 10 * 10 grids of 100 numbers of words, finding 55) more easily.This is applicable to the element with known order well, like numeral and alphabetical.

Another advantage of Clixel is and can cuts out with suitable different user or its preference by figure.For example, the top layer of child's Clixel can be made up of the selected works of painted shape.To be easy to find selected element in order making, for example, can to arrange two variablees (CF) horizontally and vertically, therefore, green triangle always is positioned at the point of crossing of green line and triangle line.Three variablees can provide similar hexagonal grid.For prevent the copy, the order of CF can change when manifesting at every turn, can change as stated spacing/towards/inclination or the like.

Having multiple basic tomographic image/target makes the user to have the multiple login that is easy to remember to different field---work/family, mobile phone, laptop computer, online bank, online transaction or the like of its life.These can all have identical top layer element, perhaps can have the different arrays of element when needed.Family's picture of checking the array that is coated with painted shape is the visual cues that should green triangle be alignd with the mouth of Anne.

In most scenes, can expect, if login attempt is rejected first, then allow to reattempt once at least.More easily, can use that the identical grid array of a position begins next trial in its setting, rather than new array is set at random.This will make the user who carries out target alignment carelessly operate sooner.If visit is rejected once more, then you will be locked.Equipment or service according to protection exist many different known ways to come override is carried out in locking.Can expect that locking for the first time is " soft ", makes some functions to continue, and provides suitable selection to user/burglar/hacker/person of searching and proofreaies and correct this situation.

A kind of mode that increases security is to have more logon screens, i.e. multipleization of described login process simply.Successfully afterwards through first logon screen (primary image/identifier to), present second screen (primary image/identifier to) to the user, by that analogy, up to realizing requisite number purpose login level.This is even more important when handling less screen, and the maximum security grade that wherein less screen size can be realized single logon screen (primary image/identifier to) has negative effect.

The multipleization permission of this logon screen is carried out the quick initial access single login primary image/identifier of unlocker device (for example be used for to) with the lower-security grade and is visited equipment and need the specific region of higher-security (bank, electronic mail access or the like) or in corporate environment, carry out to guarantee the specific region of abundant safety grades with higher safety grades.An example is following situation: only need single logon screen to come unlocker device and visit specific function (as calling out or browsing web), but pay or the visited company Email will need the user before being permitted visit through 3 logon screens.Multipleization of screen provides a kind of mechanism easily, to keep the flow process of login process, still expands safety grades through carrying out required more logon screens.The order that screen subsequent manifests can randomization.With reference to accompanying drawing 3 to Figure 10 realization is described.In order to set up Clixel, in Fig. 3, the user at first selects any personal images (being generally photo) as its primary image 301.This becomes user's desktop or main screen, and each user is through its name of input or opening device simply, when hoping to start working session or access system, and default this desktop or the main screen of manifesting.

Select focus 101 (being referred to as " point of safes "): through by the predetermined key on the lower keyboard, utilize the cursor of mouse or other indicating equipments to click button screen or through using touch-screen; User activation point of safes cursor 301 is shown in the default center among Fig. 4.

Prompting user its personal security of any choice of location on primary image 301 puts 101 position 401 now, under this situation is the eyes of Baima chess piece 501, and is as shown in Figure 5.

The size that can adjust point of safes cursor 401 is being fit to different screen resolutions, size and expecting that safety grades---the size of point of safes is more little, and it is safe more that method becomes.

Password is set: pointing out the user to select password now, is the single numeral between 1 to 64 under this situation, and in this was realized, password can be any type of alphanumeric sequence equally.Typical window has been shown among Fig. 6.Under this situation, user-selected number word 11.Screen is confirmed in this prompting, and is as shown in Figure 7.

User's register: when the user hoped login or authentication, the user can for example click the Clixel mark, and the point of safes selector switch appears as and covers on the primary image 301, and is as shown in Figure 8.In the implementation illustrated here, the point of safes selector switch is the repetitive sequence of grid 801, each grid comprise at random produce alphanumeric character---9 grids show the numeral between 1 to 64 with various sequences respectively here.The user can move to grid any part of primary image, and is so that the point of safes of being remembered 803 is alignd with selected password, as shown in Figure 9.When the user is aligned in 101 last times of point of safes with its selected password 803, the user is by input, if the location is correct, Clixel allows user's login, and is shown in figure 10.

The block diagram of the example of computing equipment 100 has been shown among Fig. 1, and in this example, computing equipment 100 is illustrated as portable electric appts.Computing equipment 100 comprises a plurality of assemblies, like the processor 102 of integrated operation of control computing equipment 100.Communication function comprises data and voice communication, carries out through communication subsystem 104, and communication subsystem 104 is communicated by letter with wireless network 150.Wireless network 150 can be the wireless network of any kind, includes but not limited to the network of data wireless networks, voice wireless network and support voice and data communication.Power supply 142 (like one or more rechargeable batteries or to the port of external power source) is to computing equipment 100 power supplies.

Processor 102 is mutual with other component interfaces; Like random-access memory (ram) 108, storer 110, display 118 (alternatively, can be the tectal touch-sensitive display of touch-sensitive that comprises operational coupled to electronic controller), one or more auxiliary I/O (I/O) subsystem 124 (comprising for example navigator), FPDP 126, loudspeaker 128, microphone 130 and other equipment subsystems 134 known in the art.Via processor 102 showing the information that can on computing equipment 100, show or appear on the display 118, like text, character, symbol, image, icon and sundry item.Processor 102 can be mutual with accelerometer 136, and accelerometer 136 can be used to detect gravity or the direction of the reacting force that caused by gravity.Can user totem information be stored in the storer 110.Computing equipment 100 comprises by processor 102 to be carried out and the operating system 146 and software program or assembly 148 of typical storage in permanent, renewable storer (like storer 110).Additional application or program can be loaded on computing equipment 100 through wireless network 150, auxiliary I/O subsystem 124, FPDP 126 or any other suitable subsystem 134.

Clixel is designed to a kind of individual's login or authentication method, is used to have any electronic equipment or the system of digital indicator, like personal computer, personal information manager, cell phone, ATM, security access system or the like.

Extend to ultimate system.Above-mentioned realization relates in setting up pattern, and the particular attention given point (or point of safes) in the user definition primary image will align with this specified point from the element-specific of assistant images layer then.When visiting subsequently or during authentication, the user must align this element with the particular attention given point.This method can extend to: at establishment stage, and the element of particular type in the definition primary image, this element does not have the fixed position in primary image.Will be from the element of the particular type of assistant images layer and the element alignment of the type in the primary image layer.For example, primary image can be the random arrangement of the little image of automobile.The user selects particular automobile at establishment stage.The assistant images layer can comprise the for example random arrangement of the little image of motorcycle.The user aligns specific motorcycle image with the automobile image of its selection.When needing authentication subsequently, as previous, manifest the primary image of automobile, and can call assistant images then.The user changes the grid of motorcycle image, till aliging between its automobile of selecting in advance and the motorcycle.Nature is suitable for the targeted customer basis, can use any selection of suitable images to fundamental sum assistant images layer.

For main Clixel example, can use in order to strengthen security more than two tomographic images.Therefore, for example, the user can select the specific image of automobile, motorcycle, woman's face at establishment stage, then when the needs authentication, illustrates and has the for example image layer of a plurality of faces, and this image layer is coated with the image of a plurality of automobiles; The user must carry out correct alignment, when correctly aliging, on a plurality of faces, manifests another image layer with motorcycle; When carrying out correct alignment, authentication is accomplished.The type of image must not manifest with set order, and the position of different faces in the layer or the like must be all not identical at every turn.Yet the zone that is associated with each image in the layer is with always the number percent of screen size must be enough little, so that the challenge of heavy attack is the same based on the system of PIN or password with tradition at least.But verification process will be enjoyed manyly for the user.

The mode that this method provides a kind of quickly and easily to use to the user, with to the computing equipment authentication himself.This method is more safer than many traditional Verification Systems based on password and PIN.This method can be used to use password, PIN and other simple authentication systems Anywhere, with log into thr computer, mobile phone or the like, online bank and transaction, ATM and chip and PIN credit and debit card safety or the like.This method can be used in the computing equipment of any kind with display, comprises personal computer, personal information manager, cell phone, ATM, point of sales terminal and security access system.

Through making observer's supervision be difficult to know that key provides improved security.Promoted the convenient and acceptance of using.Can utilize the figure password that is easy to remember to visit a plurality of distinct devices, like work/family's portable phone, laptop computer, online bank, online transaction or the like.

A kind of computing equipment comprises the pattern authentication interface; Said equipment shows primary image in the pattern authentication interface; The user for authentication himself, must will cover the element alignment of selection in advance in the element of selecting in advance that exists in the assistant images layer of primary image and the primary image.Selected element in the primary image can be the focus of fixed position in the primary image.The user can be through touching focus or utilizing cursor to select focus to identify the focus in the primary image.Focus can have the circle zone that is associated.The size of circle zone can be that the user selects.The software that moves on the computing equipment can be analyzed the applicability of picture as primary image.The assistant images layer can comprise the element that the user can identify, and said element is numeral, alphabetic word, color, shape, lines, icon or these any combination.The assistant images layer can be transparent, but except the array with user's marker element of pattern or grid arrangement.Pattern or grid can be regular.Can be so that whole pattern or grid move on static primary image, so that the user can correctly align.Can use modeling, the distance that rapid change pattern that feasible touch is knocked or grid move based on physics.Can use and shake or tilt to control the mode that pattern or grid move.Pattern or grid can repeat or circulation along all directions, make it not have the edge.The layout of pattern or grid can change when it manifests at every turn.Said change can to spacing, pattern or the grid of pattern or grid towards or inclination, pattern or grid in shape or these any combination of order, pattern or grid of element.Two or more focus in the primary image continuously can align.Identical element in the assistant images layer can be aligned to each in a plurality of focus in the primary image.Can use with primary image and assistant images layer in the combination of the sexadecimal information that is associated of the element of selecting in advance as authenticate key.Can use with primary image in the information that is associated of the element of selecting in advance and the information that is associated with the element of selecting in advance in the assistant images layer produce authenticate key; Every information is kept in the physically long-range equipment.Can cut out to be fit to different user or its preference the selection of the element in primary image and the assistant images layer.Manifest and after the user successfully alignd, another assistant images layer can manifest at an assistant images layer, the user is with the element alignment of selection in advance in the element of selecting in advance that exists in this another assistant images layer and the primary image.Can use three or more assistant images layers.The number of assistant images layer can change according to required safety grades.The element of selecting in advance in the primary image can be the element of following type: in primary image, do not have the fixed position, but can be apparent in any position in the primary image.Computing equipment can be each in following group: personal computer, personal information manager, cell phone, ATM, security access system, point of sales terminal.

Under the situation that does not break away from spirit of the present disclosure and inner characteristic, can realize the disclosure with other concrete forms.It only is schematic rather than restrictive that described embodiment should be considered in all respects.Therefore, the scope of the present disclosure is indicated by accompanying claims rather than foregoing description.Change in the implication of the equivalent of claim and the institute in the scope and should be included in its scope.

Claims

1. computing equipment with pattern authentication interface, said equipment shows primary image in the pattern authentication interface, and authenticated during the element alignment of the selection in advance in the element of selecting in advance in the assistant images that covers primary image and the primary image.

2. computing equipment according to claim 1, wherein, the selected element in the primary image is the focus of fixed position in the primary image.

3. computing equipment according to claim 1 and 2, wherein, through touching or utilizing cursor to select to identify the focus in the primary image.

4. according to claim 2 or 3 described computing equipments, wherein, focus has the circle zone that is associated, and the size of circle zone is that the user selects.

According to before the described computing equipment of arbitrary claim, wherein, the software analysis picture that moves on the said computing equipment is as the applicability of primary image.

According to before the described computing equipment of arbitrary claim, wherein, assistant images comprises element, said element is numeral, alphabetic word, color, shape, lines, icon or its any combination.

According to before the described computing equipment of arbitrary claim, wherein, except the array with the element of pattern or grid arrangement, assistant images is transparent.

8. computing equipment according to claim 7, wherein, pattern or grid are regular.

9. according to claim 7 or 8 described computing equipments, wherein, pattern or grid move on static primary image, to realize alignment.

10. computing equipment according to claim 9 wherein, uses the modeling based on physics, the distance that rapid change pattern that feasible touch is knocked or grid move.

11., wherein, shake or mode that tilt control control pattern or grid move according to claim 9 or 10 described computing equipments.

12. according to each described computing equipment in the claim 7 to 11, wherein, pattern or grid repeat or circulation.

13. according to each described computing equipment in the claim 7 to 12, wherein, when each display pattern or grid, the layout of pattern or grid changes.

14. computing equipment according to claim 13, wherein, said change to spacing, pattern or the grid of pattern or grid towards or inclination, pattern or grid in shape or its any combination of order, pattern or grid of element.

15. according to before the described computing equipment of arbitrary claim, wherein, two or more focus in the primary image that aligns continuously.

16. computing equipment according to claim 15, wherein, the identical element in the assistant images is aligned to each in two or more focus in the primary image.

17. according to before the described computing equipment of arbitrary claim, wherein, be at least a portion of authenticate key with the combination of the information that is associated of element of selection in advance in primary image and the assistant images.

18. according to before the described computing equipment of arbitrary claim, wherein, use with primary image in the information that is associated of the element of selecting in advance and the information that is associated with the element of selection in advance in the assistant images layer produce authenticate key; Every information is kept in the physically long-range equipment.

19. according to before the described computing equipment of arbitrary claim, wherein, the selection of the element in primary image and the assistant images is cut out with suitable different user or its preference.

20. according to before the described computing equipment of arbitrary claim; Wherein, After an assistant images manifests and detects successfully alignment; Show another assistant images, obtain authentication according to element of selecting in advance in said another assistant images and the element alignment of selecting in advance in the primary image.

21. according to before the described computing equipment of arbitrary claim, wherein, use three or more assistant images layers.

22. computing equipment according to claim 20, wherein, the number of assistant images layer changes according to required safety grades.

23. according to before the described computing equipment of arbitrary claim, wherein, the element of selecting in advance in the primary image is the element of following type: in primary image, do not have the fixed position, but be apparent in any position in the primary image.

24. according to before the described computing equipment of arbitrary claim, comprise following each: personal computer, personal information manager, cell phone, ATM, security access system, point of sales terminal.